Old hardware accelerators like 'safe', 'hifn' or 'ubsec' may only provide userland acceleration to e.g. OpenVPN by means of the /dev/crypto interface, which can be accessed via the OpenSSL engine framework. Note that LibreSSL does not have support for this device and instead solely relies on embedded acceleration methods e.g. AES-NI. The default is to disable this device as it is likely not needed on modern systems.

Ist eigentlich der Hilfetext zu Hardware noch aktuell? Ich finden den verwirrend."A cryptographic accelerator module will use hardware support to speed up some cryptographic functions on systems which have the chip. Do not enable this option if you have a Hifn cryptographic acceleration card, as this will take precedence and the Hifn card will not be used. Acceleration should be automatic for IPsec when using a cipher supported by your chip, such as AES-128. OpenVPN should be set for AES-128-CBC and have cryptodev enabled for hardware acceleration.

If you do not have a crypto chip in your system, this option will have no effect. To unload the selected module, set this option to 'none' and then reboot."